Vulnerability Management Engineer Job Category: Security Time Type: Full time Minimum Clearance Required to Start: None Employee Type: Regular Percentage of Travel Required: None Type of Travel: None
Vulnerability Management Engineer Job Category: Security Time Type: Full time Minimum Clearance Required to Start: None Employee Type: Regular Percentage of Travel Required: None Type of Travel: None
Vulnerability Management Consultant
Mclean, VA · On-site +1
$45 - $48/hr
Vulnerability Management Consultant Location: Washington, DC; Virginia; Dallas, TX; or Boston, MA (Remote with occasional onsite requirements and up to 10% travel) Clearance Requirements: None ...
Vulnerability Management Consultant
Mclean, VA · On-site +1
$45 - $48/hr
Vulnerability Management Consultant Location: Washington, DC; Virginia; Dallas, TX; or Boston, MA (Remote with occasional onsite requirements and up to 10% travel) Clearance Requirements: None ...
SOC Vulnerability Management Manager - Senior
Fairfax, VA · On-site
$105K - $143K/yr
Position Summary ECS is seeking a SOC Vulnerability Management Manager - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This ...
SOC Vulnerability Management Manager - Senior
Fairfax, VA · On-site
$105K - $143K/yr
Position Summary ECS is seeking a SOC Vulnerability Management Manager - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This ...
Everforth ECS is seeking a Junior Vulnerability Management Analyst to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent ...
Everforth ECS is seeking a Junior Vulnerability Management Analyst to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent ...
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
SOC Vulnerability Management Manager - Senior with Security Clearance
Fairfax, VA · On-site
$110K - $148K/yr
The position directs vulnerability scanning execution, remediation prioritization, exception handling, compliance reporting, and POA&M management while coordinating closely with system owners, ISSOs ...
SOC Vulnerability Management Manager - Senior with Security Clearance
Fairfax, VA · On-site
$110K - $148K/yr
The position directs vulnerability scanning execution, remediation prioritization, exception handling, compliance reporting, and POA&M management while coordinating closely with system owners, ISSOs ...
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
Vulnerability Management Lead
Washington, DC · On-site +1
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
Vulnerability Management Lead
Washington, DC · On-site +1
The Vulnerability Management Lead directs client's vulnerability management program across the Continuous Diagnostics and Mitigation (CDM), Web Application Surveillance Program (WASP), and Cyber ...
Senior Security Vulnerability Analyst
Washington, DC · On-site
$55 - $65/hr
Experience building consensus around vulnerability management policies and procedures. * Experience conducting security gap analyses to identify potential vulnerabilities in Board systems and ...
Quick apply
Senior Security Vulnerability Analyst
Washington, DC · On-site
$55 - $65/hr
Experience building consensus around vulnerability management policies and procedures. * Experience conducting security gap analyses to identify potential vulnerabilities in Board systems and ...
Vulnerability Analyst
Washington, DC · On-site
$99K - $225K/yr
Lead the enterprise vulnerability management process in support of continuous monitoring and RMF requirements. * Conduct regular vulnerability, compliance, and discovery scans using tools such as ...
Vulnerability Analyst
Washington, DC · On-site
$99K - $225K/yr
Lead the enterprise vulnerability management process in support of continuous monitoring and RMF requirements. * Conduct regular vulnerability, compliance, and discovery scans using tools such as ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross ...
Guidehouse is seeking a seasoned Vulnerability Management Subject Matter Expert (SME) to serve as a trusted advisor to federal clients. The Associate Director focuses on strategic guidance, cross ...
This role bridges traditional vulnerability management with real-time detection and response -- turning raw scan data, exploit intelligence, and asset context into actionable risk decisions. You'll ...
Quick apply
This role bridges traditional vulnerability management with real-time detection and response -- turning raw scan data, exploit intelligence, and asset context into actionable risk decisions. You'll ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
SOC Vulnerability Management Team Lead - Senior
Fairfax, VA · On-site
$105K - $143K/yr
Position Summary ECS is seeking a SOC Vulnerability Management Team Lead - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In ...
SOC Vulnerability Management Team Lead - Senior
Fairfax, VA · On-site
$105K - $143K/yr
Position Summary ECS is seeking a SOC Vulnerability Management Team Lead - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In ...
Sr Vulnerability Management Engineer
Washington, DC · Remote
$118K - $162K/yr
The Impact You'll Make in this Role The Senior Vulnerability Management Engineer is a senior technical contributor responsible for operating, scaling, and maturing the enterprise vulnerability ...
Sr Vulnerability Management Engineer
Washington, DC · Remote
$118K - $162K/yr
The Impact You'll Make in this Role The Senior Vulnerability Management Engineer is a senior technical contributor responsible for operating, scaling, and maturing the enterprise vulnerability ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
Enterprise Vulnerability Management Lead SME
Falls Church, VA · On-site
$174K - $189K/yr
Everforth ECS is seeking an Enterprise Vulnerability Management Lead SME to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Salary Range: $174,000 - $189,000 ...
Enterprise Vulnerability Management Lead SME
Falls Church, VA · On-site
$174K - $189K/yr
Everforth ECS is seeking an Enterprise Vulnerability Management Lead SME to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Salary Range: $174,000 - $189,000 ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
You'll partner with vulnerability management, cyber architecture and engineering, hosting, network services, business information security officers, technical risk officers, product owners, and ...
... Manager in support of secure baseline configuration and compliance validation. • Experience ... supporting vulnerability management activities for large, distributed environments spanning ...
... Manager in support of secure baseline configuration and compliance validation. • Experience ... supporting vulnerability management activities for large, distributed environments spanning ...
Vulnerability Manager information
See Reston, VA salary details
$10 - $14.21
1% of jobs
$17.26 is the 25th percentile. Wages below this are outliers.
$14.21 - $18.42
33% of jobs
The median wage is $19.61 / hr.
$18.42 - $22.62
56% of jobs
$22.62 - $26.83
6% of jobs
$26.83 - $31.03
0% of jobs
$31.03 - $35.24
1% of jobs
$35.24 - $39.45
0% of jobs
$39.45 - $43.65
2% of jobs
$43.65 - $47.86
0% of jobs
$47.86 - $52.06
0% of jobs
$52.06 - $56.27
0% of jobs
$10
$22
$56
How much do vulnerability manager jobs pay per hour?
As of Jun 28, 2026, the average hourly pay for vulnerability manager in Reston, VA is $22.78, according to ZipRecruiter salary data. Most workers in this role earn between $18.03 and $22.02 per hour, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a Vulnerability Manager, and why are they important?
To thrive as a Vulnerability Manager, you need expertise in risk assessment, vulnerability scanning, and cybersecurity fundamentals, typically supported by a degree in information security or a related field. Familiarity with tools like Nessus, Qualys, and vulnerability management platforms, as well as certifications such as CISSP or CEH, is often required. Strong analytical skills, attention to detail, and clear communication are crucial soft skills for effectively identifying issues and coordinating remediation efforts. These abilities ensure that organizations can proactively manage security risks and maintain robust defense against cyber threats.
What is the difference between Vulnerability Manager vs Security Analyst?
| Aspect | Vulnerability Manager | Security Analyst |
|---|---|---|
| Certifications | Certified Vulnerability Assessor (CVA), CISSP, CEH | CISSP, Security+, CEH |
| Work Environment | Oversees vulnerability assessments, manages teams, develops strategies | Monitors security systems, analyzes threats, responds to incidents |
| Employer & Industry Usage | Used in cybersecurity teams across industries to manage vulnerabilities | Commonly employed in security operations centers (SOCs) to analyze threats |
While both roles focus on cybersecurity, Vulnerability Managers primarily oversee vulnerability assessments and strategy, whereas Security Analysts focus on monitoring and incident response. Both roles require relevant certifications and work within cybersecurity teams, but their daily responsibilities and focus areas differ.
What does a Vulnerability Manager do?
A Vulnerability Manager is responsible for identifying, assessing, and mitigating security vulnerabilities within an organization's systems, networks, and applications. They oversee vulnerability scanning, analyze the results, prioritize risks, and work with various teams to implement remediation strategies. Their goal is to reduce the organization's exposure to cyber threats by ensuring that security weaknesses are addressed promptly and effectively.
What are some common challenges faced by Vulnerability Managers when prioritizing remediation efforts?
Vulnerability Managers often encounter challenges in balancing limited resources with a high volume of identified vulnerabilities. Prioritizing remediation efforts requires close collaboration with IT, development, and business teams to assess the potential impact and exploitability of each vulnerability. Additionally, they must stay updated on emerging threats, ensure compliance with industry standards, and communicate risk effectively to both technical and non-technical stakeholders. Navigating these complexities is essential for maintaining a strong security posture while minimizing disruption to business operations.
What cities near Reston, VA are hiring for Vulnerability Manager jobs? Cities near Reston, VA with the most Vulnerability Manager job openings:
Full-time
Medical, Retirement, PTO
Posted 19 days ago
Job description
Job Title: Vulnerability Management Engineer
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: None
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
* * *
The Opportunity:
CACI is searching for a Vulnerability Management Engineer to support the FEMA Office of the Chief Information Security Officer (OCISO) in Washington, D.C. As a Vulnerability Management Engineer, you will play a crucial role in ensuring the security and resilience of FEMA's information systems through comprehensive vulnerability identification, assessment, and remediation coordination. You will work in a dynamic environment, collaborating with system owners, cybersecurity professionals, and enterprise administrators to identify and eliminate security vulnerabilities. Your efforts will directly contribute to safeguarding FEMA's mission-critical systems and data. The Vulnerability Management Engineer will be responsible for leading vulnerability identification, prioritization, remediation coordination, and closure validation across the environment and assigned systems. This position requires administering scanning processes across all FEMA systems and analyzing vulnerability findings for risk and accuracy. The Vulnerability Management Engineer will monitor all FEMA systems Remediation Work Plans (RWPs) and POA&Ms daily, coordinate remediation efforts across Enterprise systems, and provide daily technical remediation support services. This role is critical for producing dashboards and surge reporting for critical vulnerabilities and ensuring remediation validation.
Responsibilities:
The Vulnerability Management Engineer will administer scanning processes across all FEMA systems and analyze vulnerability findings for risk and accuracy while monitoring all FEMA systems Remediation Work Plans (RWPs) and POA&Ms daily. This position requires coordinating remediation efforts across Enterprise systems, providing daily technical remediation support services, and supporting all remediation activities in a detailed, technical, and audit manner. The Vulnerability Management Engineer will ensure remediation validation and produce dashboards and surge reporting for critical vulnerabilities, as well as provide vulnerability reduction reports and trend analysis reports. Responsibilities include analyzing all vulnerability reports and remediation efforts and reporting to senior leadership monthly, conducting monthly POA&M remediation test events, and developing test reports within 5 days after testing. The position involves validating closure of vulnerabilities and providing monthly compliance remediation briefs while utilizing automated security authorization tools for managing remediation efforts and managing POA&Ms using automated tools. The Vulnerability Management Engineer will support internal and external audit events, track and suggest technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access, and research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and network and device security and encryption.
Qualifications:
- U.S. Citizenship required
- FEMA EOD suitability or Current DHS or FEMA EOD preferred
- BS/BA + 7 years of applicable experience in vulnerability management and cybersecurity
- Minimum 7 years of experience in vulnerability management and cybersecurity
- Demonstrated expertise in Nessus, ACAS, or similar vulnerability scanning tools
- Experience with automated security authorization tools
- Knowledge of vulnerability assessment methodologies and risk analysis
- Experience developing and tracking POA&Ms
- Strong analytical skills for vulnerability prioritization and trend analysis.
Desired Qualifications:
- Previous DHS or DoD experience
- Experience with CSAM, RegScale, eMASS, or similar GRC tools
- Knowledge of DISA STIGs and security compliance frameworks
- Experience with dashboard and reporting tools (Tableau, Power BI, Splunk)
- Strong communication skills for presenting to senior leadership
- Experience supporting audit
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
Pay Range:
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is:
$103,800 - $218,100
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: None
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
* * *
The Opportunity:
CACI is searching for a Vulnerability Management Engineer to support the FEMA Office of the Chief Information Security Officer (OCISO) in Washington, D.C. As a Vulnerability Management Engineer, you will play a crucial role in ensuring the security and resilience of FEMA's information systems through comprehensive vulnerability identification, assessment, and remediation coordination. You will work in a dynamic environment, collaborating with system owners, cybersecurity professionals, and enterprise administrators to identify and eliminate security vulnerabilities. Your efforts will directly contribute to safeguarding FEMA's mission-critical systems and data. The Vulnerability Management Engineer will be responsible for leading vulnerability identification, prioritization, remediation coordination, and closure validation across the environment and assigned systems. This position requires administering scanning processes across all FEMA systems and analyzing vulnerability findings for risk and accuracy. The Vulnerability Management Engineer will monitor all FEMA systems Remediation Work Plans (RWPs) and POA&Ms daily, coordinate remediation efforts across Enterprise systems, and provide daily technical remediation support services. This role is critical for producing dashboards and surge reporting for critical vulnerabilities and ensuring remediation validation.
Responsibilities:
The Vulnerability Management Engineer will administer scanning processes across all FEMA systems and analyze vulnerability findings for risk and accuracy while monitoring all FEMA systems Remediation Work Plans (RWPs) and POA&Ms daily. This position requires coordinating remediation efforts across Enterprise systems, providing daily technical remediation support services, and supporting all remediation activities in a detailed, technical, and audit manner. The Vulnerability Management Engineer will ensure remediation validation and produce dashboards and surge reporting for critical vulnerabilities, as well as provide vulnerability reduction reports and trend analysis reports. Responsibilities include analyzing all vulnerability reports and remediation efforts and reporting to senior leadership monthly, conducting monthly POA&M remediation test events, and developing test reports within 5 days after testing. The position involves validating closure of vulnerabilities and providing monthly compliance remediation briefs while utilizing automated security authorization tools for managing remediation efforts and managing POA&Ms using automated tools. The Vulnerability Management Engineer will support internal and external audit events, track and suggest technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access, and research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and network and device security and encryption.
Qualifications:
- U.S. Citizenship required
- FEMA EOD suitability or Current DHS or FEMA EOD preferred
- BS/BA + 7 years of applicable experience in vulnerability management and cybersecurity
- Minimum 7 years of experience in vulnerability management and cybersecurity
- Demonstrated expertise in Nessus, ACAS, or similar vulnerability scanning tools
- Experience with automated security authorization tools
- Knowledge of vulnerability assessment methodologies and risk analysis
- Experience developing and tracking POA&Ms
- Strong analytical skills for vulnerability prioritization and trend analysis.
Desired Qualifications:
- Previous DHS or DoD experience
- Experience with CSAM, RegScale, eMASS, or similar GRC tools
- Knowledge of DISA STIGs and security compliance frameworks
- Experience with dashboard and reporting tools (Tableau, Power BI, Splunk)
- Strong communication skills for presenting to senior leadership
- Experience supporting audit
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
Pay Range:
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is:
$103,800 - $218,100
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.